VYPR

Tcpdump

by Red Hat

Source repositories

CVEs (24)

  • CVE-2017-13688CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The OLSR parser in tcpdump before 4.9.2 has a buffer over-read in print-olsr.c:olsr_print().

  • CVE-2017-13053CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_rt_routing_info().

  • CVE-2017-13050CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.05

    The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print().

  • CVE-2017-13044CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv4_print().

  • CVE-2017-13036CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6_decode_v3().

  • CVE-2017-13020CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().

  • CVE-2017-13017CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.02

    The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-dhcp6.c:dhcp6opt_print().

  • CVE-2017-13016CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print().

  • CVE-2017-13015CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.02

    The EAP parser in tcpdump before 4.9.2 has a buffer over-read in print-eap.c:eap_print().

  • CVE-2017-13010CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart().

  • CVE-2017-12999CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print().

  • CVE-2017-12996CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.02

    The PIMv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c:pimv2_print().

  • CVE-2017-12995CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.02

    The DNS parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-domain.c:ns_print().

  • CVE-2017-12990CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions.

  • CVE-2017-12898CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:interp_reply().

  • CVE-2017-12896CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:isakmp_rfc3948_print().

  • CVE-2017-11542CriJul 23, 2017
    risk 0.64cvss 9.8epss 0.04

    tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.

  • CVE-2017-11541CriJul 23, 2017
    risk 0.64cvss 9.8epss 0.04

    tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.

  • CVE-2014-8768Nov 20, 2014
    risk 0.05cvss epss 0.20

    Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame.

  • CVE-2014-9140Dec 5, 2014
    risk 0.00cvss epss 0.06

    Buffer overflow in the ppp_hdlc function in print-ppp.c in tcpdump 4.6.2 and earlier allows remote attackers to cause a denial of service (crash) cia a crafted PPP packet.

Page 1 of 2